Blog
Ranjeet Menon

Malware through online songs website

March 12, 2012
2
Estimated reading time: 2 minutes

Music is most people’s entertainment choice across various platforms. There are many websites which provide features and facilities to listen to music online and to download some music as well.

Yesterday I visited a website “http://www.hamara-sangeet.com”. It is an online radio service for Indian songs, where you can find some great music of your choice. When I select a song I wish to listen to I need to click on the request tab and then it asks for the login details.

When I logged in, it redirected me to a fraudulent domain which showed that the user’s computer is heavily infected. Furthermore, it asked the user to download a file which would clean the infection.

This file gets downloaded by the name of “scandsk.exe”. This file belongs to the Backdoor.Proxyier family.
Upon execution, it allows the attacker to get access to the infected machine. The attacker may then give instructions to send, receive, execute and delete files and use this to harvest confidential data from the computer or log activity on the computer and much more.

Quick Heal Browser Protection feature blocks this harmful domain and Quick Heal Online Protection removes the downloaded files.

Have something to add to this story? Share it in the comments.

2 Comments

Your email address will not be published.

CAPTCHA Image

  1. Wow! This can be one particular of the most helpful blogs We’ve ever arrive across on this subject. Actually Magnificent. I am also a specialist in this topic therefore I can understand your effort.

    Reply
  2. Pradip ChowdhuryDecember 1, 2012 at 10:36 PM

    This is very helpful. Thank you.

    Reply